Asterisk Security

AST-2014-012: Mixed IP Address Families In Access Control Lists May Permit Unwanted Traffic.

Posted November 20, 2014 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: address family, Advisory Unauthorized Access, asterisk, Asterisk Project Security Advisory, incoming packet, ip address, Mark Michelson

Asterisk Project Security Advisory – AST-2014-012 ProductAsterisk SummaryMixed IP address families in access control lists may permit unwanted traffic.Nature of AdvisoryUnauthorized Access SusceptibilityRemote unauthenticated sessions Severity ModerateExplo..

AST-2014-011: Asterisk Susceptibility To POODLE Vulnerability

Posted October 20, 2014 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: Advisory Contact Matt Jordan, asterisk, Asterisk Project Security Advisory, Certified Asterisk, vulnerability

Asterisk Project Security Advisory – AST-2014-011 ProductAsterisk SummaryAsterisk Susceptibility to POODLE Vulnerability Nature of AdvisoryUnauthorized Data DisclosureSusceptibilityRemote Unauthenticated Sessions Severity MediumExploits KnownNo Repor..

AST-2014-010: Remote Crash When Handling Out Of Call Message In Certain Dialplan Configurations

Posted September 18, 2014 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: Advisory Contact Matt Jordan, asterisk, Asterisk Project Security Advisory, Certified Asterisk, channel driver, Philippe Lindheimer, Product Release Asterisk, Product Release Series Asterisk, Product Asterisk, security advisory

Asterisk Project Security Advisory – AST-2014-010 ProductAsterisk SummaryRemote crash when handling out of call message in certain dialplan configurations Nature of AdvisoryRemotely triggered crash of AsteriskSusceptibilityRemote authenticated sessi..

AST-2014-009: Remote Crash Based On Malformed SIP Subscription Requests

Posted September 18, 2014 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: Advisory Contact Mark Michelson, asterisk, Asterisk Project Security Advisory, Certified Asterisk, Mark Michelson, Product Release Asterisk, Product Release Series Asterisk, Product Asterisk

Asterisk Project Security Advisory – AST-2014-009 ProductAsterisk SummaryRemote crash based on malformed SIP subscriptionrequestsNature of AdvisoryRemotely triggered crash of AsteriskSusceptibilityRemote authenticated sessions Severity Major Explo..

AST-2014-004: Remote Crash Vulnerability In PJSIP Channel Driver Subscription Handling

Posted March 10, 2014 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: Advisory Contact Matt Jordan, asterisk, Asterisk Project Security Advisory, Product Release Asterisk, Product Release Series Asterisk, Product Asterisk

Asterisk Project Security Advisory – AST-2014-004 ProductAsterisk SummaryRemote Crash Vulnerability in PJSIP Channel DriverSubscription Handling Nature of AdvisoryDenial of Service SusceptibilityRemote Authenticated Sessions Severity ModerateExplo..

AST-2014-003: Remote Crash Vulnerability In PJSIP Channel Driver

Posted March 10, 2014 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: Advisory Denial of Service Susceptibility, Advisory Contact Joshua Colp, asterisk, Asterisk Project Security Advisory, Joshua Colp, PJSIP, Product Release Asterisk, Product Release Series Asterisk, Product Asterisk

Asterisk Project Security Advisory – AST-2014-003ProductAsterisk SummaryRemote Crash Vulnerability in PJSIP channel driver Nature of Advisory Denial of ServiceSusceptibility Remote Unauthenticated Sessions SeverityModerate Exploits Known No Repor..

AST-2014-002: Denial Of Service Through File Descriptor Exhaustion With Chan_sip Session-Timers

Posted March 10, 2014 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: Advisory Contact Kinsey Moore, asterisk, Asterisk Project Security Advisory, Certified Asterisk, Product Release Asterisk, Product Release Series Asterisk, Product Asterisk

Asterisk Project Security Advisory – AST-2014-002 ProductAsterisk SummaryDenial of Service Through File Descriptor Exhaustionwith chan_sip Session-TimersNature of AdvisoryDenial of Service SusceptibilityRemote Authenticated or Anonymous Sessions Sever..

AST-2014-001: Stack Overflow In HTTP Processing Of Cookie Headers.

Posted March 10, 2014 by Asterisk Security & filed under Asterisk Users Comments: 0.

Tags: Advisory Contact Richard Mudgett, asterisk, Asterisk Project Security Advisory, Certified Asterisk, Lucas Molas, Manuel Sadosky, Product Release Asterisk, Product Release Series Asterisk, Product Asterisk, Richard Mudgett Initial Revision

Asterisk Project Security Advisory – AST-2014-001 ProductAsterisk SummaryStack Overflow in HTTP Processing of Cookie Headers.Nature of AdvisoryDenial Of Service SusceptibilityRemote Unauthenticated Sessions Severity ModerateExploits KnownNo Repor..

M	T	W	T	F	S	S
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31

Author : Asterisk Security

Recommended

Recent Questions

Categories

FAQs Archive

Posts By Date

Recommended

Recent Questions

Frequent Terms

Categories

FAQs Archive

Posts By Date